Gaia is a relatively new open source automation platform designed for fast, efficient CI/CD workflows. It offers a host of advantages, from not requiring YAML/JSON files to configure automation, to being language-independent (it offers support for Go, Java, Python, C++, Ruby and Node.js).
This course will take you through the process of running a full-fledged DevSecOps workflow using Gaia and a host of industry-standard security scan tools. We start with static analysis (SAST) and source composition analysis (SCA), building pipelines in NodeJS and Python.
After that, we’ll learn to automate a dynamic testing (DAST) pipeline with OWASP ZAP and Gaia. All of these lessons include in-depth hands-on labs that will let you build actual pipelines in real-world environments. This will give you genuine experience in creating CI/CD workflows even for enterprise-level applications.
NodeJS SAST and SCA Pipeline with Gaia
Python SAST and SCA Pipeline with Gaia
ZAP DAST Pipeline with Gaia